Pierluigi Paganini March 04, 2013
US retaliation strategy against hackers

The year started very difficult for the U.S. government, its networks have been constantly hit by hackers that for different reasons have tried to steal sensitive information and intelligence secrets. The principal menaces against US come from state-sponsored hackers and hacktivists, in the last months we have read of many cyber attacks, mainly for cyber […]

Pierluigi Paganini March 03, 2013
Evernote hacked, how respond to yet another data breach?

Another noisy attack has alerted IT community, online note service Evernote is the latest firm to get hacked. The company provides the popular service to around 50 million users,  the attackers accessed data of some users such as usernames, passwords and email addresses. Actually there is no evidence that contents in Everynote have been accessed […]

Pierluigi Paganini February 25, 2013
Serious security flaws affect millions of HTC mobile devices

The news of those who make a lot of noise, more than 18 million devices commercialized by Taiwanese company HTC had security flaws that could exposes users to serious risks in particular the bugs could allow the theft of information stored on the mobile and the tracking of user’s location. The vulnerabilities appear serious according […]

Pierluigi Paganini February 23, 2013
Also Microsoft in the club of hacked companies

When Apple revealed the hack to Reuters press agency I wrote that the last big enterprise not yet hacked was Microsoft, anticipating that was question of time. The last events have revealed how much vulnerable also major companies to cyber attacks, Facebook, Twitter and principal Press agencies such as NYT dedicate large investment to cyber […]

Pierluigi Paganini February 22, 2013
Mandiant report links Anonymous 2011 hacks to APT1 campaign

The new is very curious and represents the demonstration that cyber threats could not be analyzed separately, security need a global approach, we cannot distinguish between cybercrime and cyber warfare but we must be focused on the cyber menaces, their effects and the risks connected to adoption of not appropriate security measures. The case is […]

Pierluigi Paganini February 21, 2013
#OpLastResort Anonymous hacked US State Dept

The war of Anonymous against US institutions is continuing, few weeks ago the group of hacktivists hit Federal Reserve computers and now announced the it accessed to State Department’s website and its database, publishing it online on ZeroBin website. Anonymous also violated the site of investment firm George K. Baum & Company, motivating its actions […]

Pierluigi Paganini February 18, 2013
Government networks totally vulnerable to cyber attacks

In this days it is circulating persistently the news that The Cyber Intelligence Sharing and Protection act (CISPA) will be reintroduced by House Intelligence Committee Chairman Mike Rogers (R-Mich.) and ranking member Rep. Dutch Ruppersberger (D-Md.) before the US House next week. The controversial cyber bill raised an heated debate, the act will force any company to […]

Pierluigi Paganini February 16, 2013
Facebook compromised by zero-day Java exploit

In this last months we have registered numerous clamorous attacks against intelligence agencies, government offices, media and social networking platforms. Twitter was last victim in order of time but the thought of security experts was focuses of Facebook, the biggest social networking with more than 1 billion members, a mine of information related to the […]

Pierluigi Paganini February 12, 2013
Adobe 0-days exploited for IEEE aerospace spearphishing attacks

Last week Adobe released a patch for Adobe Flash that fixed a zero day vulnerability, CVE-2013-0633, that is being exploited using Microsoft Office files with embedded flash content delivered via email. The vulnerability is not isolated, it is circulating the news of a new one coded CVE-2013-0634 being exploited trough web browsers such as Firefox and Safari […]

Pierluigi Paganini February 07, 2013
Operation Beebus, another chinese cyber espionage campaign

Security Firm FireEye revealed to have discovered an APT campaign targeting companies in the defense and aerospace sector and that has been originated from China to steal intellectual property and industrial secrets from US companies. In this period many other attacks have been linked to China such as the cyber espionage campaign against NYT and […]